“Anonymized” data really isn’t—and here’s why not – Ars Technica

You have zero privacy anyway. Get over it.

So spoke Scott McNealy more than a decade ago. At the time he made this statement, he received a fair amount of criticism. Turns out, he might very well have had a point, though perhaps for reasons he might not have foreseen.

A recent paper highlights the issue of the “reidentification” or “deanonymization” of anonymized personal information. However, the issue goes beyond anonymized information to the very heart how one should define personal information that is or should be protected under privacy legislation.

“Anonymized” data really isn’t—and here’s why not – Ars Technica.

Canadian privacy legislation simply defines personal information as “information about an identifiable individual” (excluding certain information about someone in their capacity as an employee). However, what does “about an identifiable individual” mean? Does it mean that the person collecting the particular nugget of information can associate it with a person’s identity? Or, perhaps more disconcertingly, does it include data that has the potential to be associated with someone by analyzing that particular bit of information, which alone (or even in conjunction with all the other information collected by a given organization) could not be linked with a particular individual, with information available from other sources?

no more cash, please

Interesting opinion piece in Wired about the disadvantages of cash – as in dollar bills and coins – and the general (albeit slow) trend of economies to move towards electronic forms of payment. It certainly makes sense, I think. Not only is cash inconvenient, but, as the article points out, it’s costly and not particularly eco-friendly:

The cost to taxpayers [in the US] in 2008 alone was $848 million, more than two-thirds of which was spent minting coins that many people regard as a nuisance. (The process also used up more than 14,823 tons of zinc, 23,879 tons of copper, and 2,514 tons of nickel.)

It strikes me as odd that e-payment devices had not gained much traction in North America. More specifically, devices that can be used in place of cash, without the hassle of credit card signatures or entering PINs for debit cards. Elsewhere in the world such devices seem to have been taken up quite rapidly. For example, in Hong Kong, the Octopus card, a contactless, stored value card originally designed as a payment mechanism for the Hong Kong subway system, has been a roaring success. Use of such cards has now expanded to stores, restaurants – even parking meters and vending machines. Similarly, I remember seeing a Coke machine in Singapore where one could buy a brink by dialing a short number and thinking, how cool is that? FTA:

“The cell phone is the best point-of-sale terminal ever,” says Mark Pickens, a microfinance analyst with the Consultative Group to Assist the Poor. Mobile phone penetration is 50 percent worldwide, and mobile money programs already enable millions of people to receive money from or “flash” it to other people, banks, and merchants. An added convenience is that cell phones can easily calculate exchange rates among the myriad currencies at play in our world.

In contrast, cash replacement systems in North America don’t seem to be faring all too well. I remember a few years back when Dexit made its debut in Toronto. It was a stored value chip that you could carry on your keychain and swipe to make payments. You could reload it easily through a website. Fees were quite reasonable. And it seemed to work quite well. I was quite a fan. That is, until Dexit was restructured in 2006 and more or less all the terminals at stores disappeared.

One survey has found that there is some resistance from consumers to the idea of using mobile phones, due primarily to security and identity theft concerns. Certainly an issue, but one I would have thought would be no more risky than the use of credit cards, e-commerce sites or even venturing on-line with a PC. I know this is a bit of a simplistic comparison, and that there are significant complexities involved in electronic security, particularly when it involves money, but I would have thought that both the development of a secure platform as well as the ability to properly market such a platform to consumers would not be beyond the capabilities of companies who have, for example, developed highly secure mobile e-mail devices, or set up nationwide, sophisticated 3G cell networks, particularly given the potentially lucrative market for such a service which as yet seems to be relatively free from much in the way of serious competition – at least here in North America.

In the meantime, I guess it’s off to the ATM again.

taking the fun out of blogging

As a lawyer, I understand the need for policies, procedures, practices, etc. when running a business, managing vendors, employees, etc. Of course. Sure. That’s part of work – both my work and the work of my clients. But when I see an article entitled “Blogging Policies and Best Practices for Lawyers and Law Firms” well, gotta say, my eyes start glazing over.

Not that there’s anything particularly bad or wrong about the article. In fact, it offers some good advice on avoiding “ethical minefields”, creating “powerful marketing tools” and ensuring you realize a good return on your “investment”.

Ugh. To be perfectly honest one of the primary reasons I blog is not to realize a return on investment, or to create a powerful marketing tool, but rather just to offer casual observations (or ruminations) on my work or things related to my work. In other words, its a bit of fun, as compared, for example, to writing a formal research paper, journal article, or a 100 page outsourcing contract. For those types of writing, there are many, many rules, requirements and policies to remember and adhere to, amongst other considerations. And relatively speaking, its not quite as much writing that stuff as it is posting what are ostensibly meandering ramblings about the next new thing. Don’t get me wrong, its certainly interesting and challenging work, but its not the type of thing one typically does to relax.

I guess what I’m getting at is along the same lines as the previous post about making blogging part of someone’s job. Its kind of like saying that its part of your job to chat up your friends at work on a regular basis. Its kind of like saying that there should be internal policies governing who you go to lunch with, and what you talk about over lunch. In other words, to me, it seems to take all the fun out of it. It makes it seem like work. It puts you in the mindset that it is work. And, to be perfectly honest, I think it makes it less interesting, because you’re too worried about the time being put into it. Too worried about whether you’re writing for your “target market”. Too worried about “visualizing and addressing your market”. Too worried on making your blog sound “informal and conversational”. Too worried about this, that and the other thing, none of which have much to do with the subject matter of what you’re writing about.

Of course, this is just my take on blogging and what I hope to achieve (or perhaps rather not to achieve) by doing it.

Wikiality

Interesting post on the Wellington Financial Blog about “Wikiality” – the practice of taking stuff in Wikipedia as the truth, or, to quote: ““a reality where, if enough people agree with a notion, it becomes the truth.”

JN notes that Wikipedia has been cited by the courts, and this is reason for concern. A snippet:

The practice poses two problems:

  1. The references may be inaccurate; and
  2. Even if accurate, the references are subject to change at any point in the future, making it difficult for any future decisions to refer back to the original or understand the context in which it was made.

Given recent reports of Microsoft offering to pay individuals to make changes to certain Wikipedia articles in which they have a vested interest, the credibility of the site as a definitive reference source again comes into question.

A few of my colleagues at the firm also expressed bemusement when a recent case in Ontario (don’t have the citation, sorry) also cited Wikipedia.

I am quite a big fan of Wikipedia. It is, I think a rather useful and handy tool to refer to from time to time. Do I take it as the gospel? No. Would I use it if I were trying to concoct an antidote for a poison that was about to kill me? Probably not. Would I cite it in a legal research paper? Possibly. In fact, quite likely.

Although Wikipedia is by no means without its weaknesses, it also has its strengths. Sure, there is a possibility of inaccuracy. But then again, isn’t something less likely to have inaccuracies if it is reviewed (and edited) by more eyes (and more minds)? Isn’t it more likely that if there is a dispute about what is and isn’t correct, it will come to light, just like the Microsoft incident?

And what source, can it be said, is free of inaccuracies? Certainly not The New York Times. Although the Gray Lady is quick to point out that it was “deceived” by an errant reporter, it is less quick to reflect on the fact that it published fabricated stories. That of course is the clearest example, but history is rife with examples of inaccurate or misleading stories in the press. Less clear, of course, is media bias. And one only needs to refer to Manufacturing Consent. I don’t necessarily agree with all that book has to offer, but it certainly provides some food for thought.

What about scientific publications? Hmmm. Well. Again, truth is quite often relative. The clearest examples, are, of course, outright fabrication. Nonetheless, Dr. Hwang Woo-suk’s paper on producting the first cloned stem cell line was considered the truth for several years, until he was discredited. And more generally speaking, is it not true that, in the world of science, what is considered to be the truth is what most scientists believe to be true? Is that not the system of peer review? A great read on this topic is The Structure of Scientific Revolutions (as an aside, its also the book that introduced the phrase “paradigm shift” into popular parlance). I won’t bore you with details, but suffice it to say that, at the end of the day, science, at least in concept, may not be that far from wikiality.

My point isn’t necessarily to skewer existing sources of “truth” but rather to point out that such sources aren’t necessarily more reliable or accurate, or less fallible, than something like Wikipedia.

And as for things changing? Make a copy.